Abstract: Disclosed are systems, methods and computer program products for detecting and preventing spread of malware in a peer-to-peer (P2P) network. The system includes a P2P server receiving from a peer client computer a request for a metadata object and determining if the requested metadata object is associated with one of a verified clean data object, a verified malicious data, or an unverified data object. If the requested metadata object is associated with a verified clean data object, transmitting the requested metadata object to the peer client computer. If the requested metadata object is associated with an unverified data object, determining if the peer client computer has an antivirus software for testing the unverified data object for malware. If the peer client computer has an antivirus software, transmitting to the peer client computer the requested metadata object, otherwise denying client' request.

Abstract: Analysis of authenticity digital certificates includes. Initial information pertaining to digital certificates is collected from diverse information sources. For each of the digital certificates the initial information includes intrinsic parameter data from among contents of the digital certificate and extrinsic parameter data pertaining to the digital certificate and comprising static data not contained in the contents of the digital certificate. Selected parameter data is stored and analyzed to determine a measure of suspiciousness for each of the digital certificates. If necessary, circumstantial data based on actual usage of one or more of the digital certificates are collected. The initial data and supplemental data are compared against a set of decision criteria that define fraudulent activity, and a determination of authenticity of each of the digital certificates is made.

Abstract: Analysis of authenticity digital certificates includes. Initial information pertaining to digital certificates is collected from diverse information sources. For each of the digital certificates the initial information includes intrinsic parameter data from among contents of the digital certificate and extrinsic parameter data pertaining to the digital certificate and comprising static data not contained in the contents of the digital certificate. Selected parameter data is stored and analyzed to determine a measure of suspiciousness for each of the digital certificates. If necessary, circumstantial data based on actual usage of one or more of the digital certificates are collected. The initial data and supplemental data are compared against a set of decision criteria that define fraudulent activity, and a determination of authenticity of each of the digital certificates is made.

Abstract: Disclosed are systems, methods and computer program products for detecting and preventing spread of malware in a peer-to-peer (P2P) network. The system includes a P2P server receiving from a peer client computer a request for a metadata object and determining if the requested metadata object is associated with one of a verified clean data object, a verified malicious data, or an unverified data object. If the requested metadata object is associated with a verified clean data object, transmitting the requested metadata object to the peer client computer. If the requested metadata object is associated with an unverified data object, determining if the peer client computer has an antivirus software for testing the unverified data object for malware. If the peer client computer has an antivirus software, transmitting to the peer client computer the requested metadata object, otherwise denying client' request.

Abstract: Disclosed are systems, methods and computer program products for malware detection in a peer-to-peer (P2P) network. In one example embodiment, a peer node of the P2P network receives a user request to download a data object from the P2P network. The peer node obtains a metadata object associated with the requested data object and extracts from the metadata object a checksum associated with the requested data object. The peer node then determines if the extracted checksum is associated with a malicious data object by comparing the extracted checksum with checksums of known malicious data objects stored in a local malware database. If the checksum of the requested data object matches a checksum of a malicious data object, the user request to download the data object form the P2P network is denied.